CVE-2022-32926

Vulnerability

A bounds check issue exists in an unspecified component of Apple operating systems. An app with root privileges can trigger this flaw to execute arbitrary code with kernel privileges. The issue is present in versions prior to tvOS 16.1, iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16 [1][2][3][4].

Exploitation

An attacker must have an app with root privileges on the target device. The app can then exploit the bounds check vulnerability to achieve arbitrary code execution at the kernel level. No additional user interaction is required beyond installing the malicious app. The exact exploitation steps are not publicly disclosed.

Impact

Successful exploitation allows an app with root privileges to execute arbitrary code with kernel privileges, resulting in full compromise of the kernel. This can lead to complete control over the device, including access to sensitive data and system functions.

Mitigation

Apple addressed the issue with improved bounds checks in the following releases: tvOS 16.1, iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, all released on October 24, 2022 [1][2][3][4]. Users should update to the latest available versions. No workarounds are documented.